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ABSTRACT 


A smartcard for use with a receiver of encrypted broadcast 
signals comprises a microprocessor for enabling or control- 
ling decryption of said signals. A memory is coupled to the 
microprocessor. The microprocessor is adapted to enable or 
control the individual decryption of a plurality of such 
signals from respective broadcast suppliers of such signals 
by means of respective dynamically created zones in the 
memory, the dynamically created zones each being arranged 
to store decryption data associated with a respective one of 
said broadcast suppliers. 

35 Claims, 17 Drawing Sheets 
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SMARTCARD FOR USE WITH A RECEIVER supplier, a plurality of memory zones in the second series 

OF ENCRYPTED BROADCAST SIGNALS, having a common identity label and containing different 

AND RECEIVER classes of data relating to the handling of received broadcast 

signals from that broadcast supplier. 

This application is a continuation of PCT/EP97/02107 5 Preferably, the smartcard is arranged to create dynami- 

filed Apr. 25, 1997. cally the memory zones of said first series. The dynamically 

The present invention relates to a smartcatd for use with created memory zones may be continuous, 

a receiver of encrypted broadcast signals in a broadcast and Preferably, the smartcard comprises a management 

reception system, a receiver/decoder for receiving and memory zone arranged to store data for controlling the 

decrypting broadcast signals, apparatus for broadcasting 10 dynamic creation of said dynamically created zones, 

encrypted signals and a method of broadcasting encrypted One of said dynamically created zones may contain rights 

signals. data indicating a particular selection of broadcast items 

In particular, but not exclusively, the invention relates to broadcast by a broadcast supplier, which the user of the 

a mass-market broadcast system having some or all of the smartcard is entitled to decrypt, the smartcard being 

following preferred features: 15 arranged to utilise said rights data to decrypt items broadcast 

It is an information broadcast system, preferably a radio ^ that ^PP^er. 

and/or television broadcast system A transaction memory zone may be defined in the smart- 

t . . . „., . , 14U ... , , , . card in addition to said dynamically created zones and which 

It is a satellite system (although it could be applicable to . . - ^, . Li J . . A , , iL 

U1 t • \ contains further rights data concerning items broadcast by a 

cable or terrestrial transmission) . , . & , _ * ^ . 

' 20 broadcast supplier which a user of the smartcard is entitled 
It is a digital system, preferably using the MPEG, more to decrypt on]y in responsc to a transaction output signal 
preferably the MPEG-2, compression system for data/ which can 5e generated by the smartcard under the control 
signal transmission of the ^ 
It affords the possibility of interactivity The smartcard may further comprise a counter for count- 
It uses smartcards. 25 ing the number of occasions on which an item is broadcast 
The term "smartcard" is used herein with a broad following the output of a said transaction output signal, the 
meaning, and includes (but not exclusively so) any micro- smartcard being arranged to gate the decryption of that item 
processor based card or object of similar function and in dependence upon the count value reached by said counter, 
preformance. A second aspect of the present invention provides a 
In a first aspect, the present invention provides a smart- 30 receiver/decoder for use with a smartcard as described 
card for use with a receiver of encrypted broadcast signals, above, the receiver/decoder comprising a smartcard reader 
the smartcard comprising: and being arranged to decrypt broadcast encrypted signals 

a microprocessor for enabling or controlling decryption of under the control of the subscriber smartcard. 
said signals; and a memory coupled to said microprocessor; The receiver/decoder may be arranged to decrypt 
said microprocessor being adapted to enable or control the 35 encrypted broadcast video and/or audio signals and to gen- 
individual decryption of a plurality of such signals from erate corresponding video and/or audio output, 
respective broadcast suppliers of such signals by means of Preferably, the receiver/decoder has a relatively high 
respective dynamically created zones in said memory, said bandwidth input port for receiving said encrypted broadcast 
dynamically created zones each being arranged to store signals and a relatively low bandwidth output port arranged 
decryption data associated with a respective one of said 40 to transmit output control signals back to a broadcast trans- 
broadcast suppliers. Dynamic creation (and removal) of mitter. 

zones in the smartcard allows for the rights afforded to the Preferably the receiver/decoder contains a stored identi- 

subscriber by means of the smartcard to be changed easily fier and is arranged to work only with a smartcard having a 

and quickly by, for example, EMMs (Entitlement Manage- corresponding stored identifier. 

ment Messages) which are periodically transmitted by the 45 In a third aspect, the present invention provides apparatus 

broadcaster, received by the receiver/decoder and passed to for broadcasting encrypted signals to receiver/decoders, the 

the smartcard. apparatus comprising means for generating two of more 

Preferably, the smartcard further comprises an identifier classes of broadcast control signals, wherein each class of 

and at least one secret decryption key associated with a such control signals includes receiver/decoder ID data for 

respective one of said broadcast suppliers, said identifier and 50 selectively enabling receiver/decoders having a correspond- 

the or each key being stored in one of said dynamically ing ID to respond to such a class of control signals, said 

created zones and being arranged to decrypt broadcast receiver/decoder ID data including group ID data for 

signals having an identity corresponding to that identifier enabling one or more groups of receiver/decoders all to 

and encrypted using an encryption key corresponding to that respond to a common class of such control signals, the 

decryption key. 55 apparatus being provided with database means which is 

The smartcard may further comprise for each zone stored arranged to distribute dynamically individual receiver/ 

group identifier and a further identifier which identifies it decoders between different ID groups in response to input 

within that group and is arranged to decrypt broadcast information. 

signals having an identity corresponding to the stored group The database means may be responsive to signals 

identifier. 60 received from the receiver/decoders to change the distribu- 

The smartcard may be arranged to maintain a first series tion of receiver/decoders between groups, 

of memory zones containing the identities of the respective The apparatus may be arranged to broadcast control 

broadcast suppliers and a second series of dynamically signals for changing the distribution of receiver/decoders 

created memory zones, the memory zoues in the second between groups in response to said input information, 

series each being labelled with the identity of a broadcast 65 Different classes of control signals may enable the 

supplier and containing data including said decryption data decryption of different parts of a broadcast encrypted data 

used for the handling of received broadcast signals from that stream. 
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Preferably, the input information includes payment infor- 
mation. The classes of control signals may include classes 
which control subscription to decrypt encrypted broadcast 
signals from different broadcast suppliers. The classes of 
control signals may also include classes which control 5 
purchase of the right to decrypt broadcast encrypted data 
signals in different time frames. 

Preferably, the encrypted broadcast signals are video 
and/or audio signals, and the apparatus may be arranged to 
transmit said encrypted data signals to a satellite in orbit. 3Q 

Each group may comprise up to 256 members. 

In a fourth aspect, the present invention provides a 
receiver/decoder for receiving encrypted broadcast signals, 
the receiver/decoder comprising a group ID and being 
responsive to a class of broadcast control signals having a 
corresponding ID to said group ID, the receiver/decoder 15 
being arranged to change its group ID in response to a 
further control signal. 

Further control signal may comprise a broadcast signal, 
said broadcast signal and said encrypted broadcast signals 
being arranged to be received by said receiver/decoder. 20 

Preferably, the group ID is recorded in a smartcard 
removably inserted in the receiver/decoder. The encrypted 
broadcast signals may be video and/or audio signals. 

In a fifth aspect the present invention provides a system 
for broadcasting and receiving digital data signals compris- 25 
ing apparatus as described above in conjunction with a 
receiver/decoder as described above. 

In a sixth aspect, the present invention provides a method 
of broadcasting encrypted signals to receiver/decoders, the 
method comprising generating two or more classes of broad- 30 
cast control signals, each class of such signals including 
receiver/decoder ID data for selectively enabling receivers/ 
decoders having a corresponding ID to respond to such a 
class of control signals, and distributing dynamically indi- 
vidual receiver/decoders between different ID groups in 35 
response to input information. 

The input information preferably includes payment infor- 
mation and said classes of control signals enable the 
receiver/decoders to selectively decrypt portions of an 
encrypted broadcast video and/or audio stream. 40 

In a seventh aspect, the present invention provides appa- 
ratus for broadcasting encrypted signals to receiver/ 
decoders, the apparatus comprising means for generating 
control signals for controlling or enabling the decryption of 
said encrypted signals, means for associating control signals 45 
with respective program transmissions within said broadcast 
signals, the associating means comprising means for gener- 
ating a signal identifying each transmission in a series of 
transmissions of the same program. 

Preferably, the apparatus further comprises means for 50 
generating a signal for setting a limit at the receiver/ 
decoders on the number of transmissions in said series 
which can be decrypted. The apparatus may be responsive to 
an input signal from a receiver/decoder to vary said limit. 

Preferably, the apparatus is arranged to transmit said 55 
Video and/or audio stream to a satellite in orbit. 

In an eighth aspect, the present invention provides a 
receiver/decoder for receiving and decrypting broadcast 
signals in a Pay Per View (PPV) mode, the receiver/decoder 
comprising means for detecting control signals which enable 60 
or control the decryption of particular program transmis- 
sions within said broadcast signals, said control signals 
including information identifying each transmission in a 
series of transmissions of the same program, and limiting 
means coupled to said detecting means for limiting the 65 
number of transmissions in said series which can be 
decrypted. 
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Preferably, the limiting means comprises a counter 
arranged to be incremented or decremented towards a stored 
limit value in response to each successive viewing of a 
transmission within said series. The receiver/decoder pref- 
erably comprises means for adjusting said limit value in 
response to a received broadcast signal. Preferably, the 
limiting means comprises a smartcard removably inserted in 
the receiver/decoder. 

In a ninth aspect, the present invention provides a 
receiver/decoder for receiving and decrypting encrypted 
broadcast signals, the receiver/decoder comprising: 

a smartcard reader; 

a processor coupled to the smarteard reader and arranged 
to decrypt said signals in dependence upon an output 
from the smartcard reader; 

memory means containing a stored ID of the receiver/ 
decoder; 

means for comparing said stored ID with an ID of a 

smartcard read by the smartcard reader; and 
means for enabling or disabling the decryption of said 

signals in dependence upon the comparison. 
The enabling means may be arranged to enable or disable 
said smartcard. 

The processor may be arranged to enable said smartcard 
in response to a handshake routine between the receiver/ 
decoder and smartcard. 

The receiver/decoder may be arranged to receive and 
decrypt broadcast video and/or audio signals. 

In a tenth aspect, the present invention provides a smart- 
card for use in a receiver/decoder as described above, said 
smartcard including a memory containing a list of IDs of 
respective receiver/decoders with which it may operate and 
indications as to whether the smartcard may operate with 
each of said listed receiver/decoders 

In an eleventh aspect, the present invention provide a 
combination of a receiver/decoder as described above and a 
smartcard as described above, said receiver/decoder further 
comprising means for reading the ID of each receiver/ 
decoder listed in the memory of said smartcard and the 
indication associated therewith to determine whether the 
smartcard may be used with the receiver/decoder. 

In a twelfth aspect, the present invention provides a 
smartcard for use with a receiver of encrypted broadcast 
signals, the smartcard comprising 

a microprocessor for enabling or controlling decryption of 

said signals; and 
a memory coupled to said microprocessor; 
said microprocessor being adapted to enable or control the 
individual decryption of a plurality of such signals from 
respective broadcast suppliers of such signals by means 
of respective zones in said memory, said zones each 
being arranged to store decryption data associated with 
a respective one of said broadcast suppliers, said 
decryption data including a priority level assigned to 
the smartcard by the respective broadcast supplier and 
enabling the decryption of signals associated with that 
priority level broadcast by that broadcast supplier. 
The priority level may be assigned to the smartcard by 
means of a control signal broadcast by the broadcast sup- 
plier. 

In a thirteenth aspect, the present invention provides 
apparatus for broadcasting encrypted broadcast signals to 
receiver/decoders, said receiver/decoders having assigned 
thereto a respective priority level, the apparatus comprising: 

means for generating control signals for controlling or 
enabling the decryption of said broadcast signals, the 
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control signals each having an address portion for broadcast centre receives a digital signal stream (typically a 
selectively enabling decryption by a receiver/decoder stream of video signals). The compressor 2002 is connected 
having a corresponding address; and to a multiplexer and scrambler 2004 by linkage 2006. The 
means for addressing receiver/decoders with said control multiplexer 2004 receives a plurality of further input signals, 
signals selecuvely according to their respective priority 5 assembles one or more transport streams and transmits 
j evc j s compressed digital signals to a transmitter 2008 of the 
The apparatus may further comprise means for generating broadcast centre via linkage 2010, which can of course take 
a first set of control signals associated with a respective a ™ de ™£ tv of for ™ folding telecom links. The trans- 
broadcast supplier of broadcast signals and a second set of * 1 < er , 20 °* fran ™^ # electromagnetic signals via uplink 
, , . T ■ * j -*u *u « n 2012 towards a satellite transponder 2014, where they are 
contro signals associated with respective programs the 10 electronicall ^ and £ oadcast via notional down . 

control signals in the second set having a switching portion Hnk 2m iQ ^ receiyer 2Q18 conventionaUy ia the form 

arranged to gate decryption by said receiver/decoders, the of a dish QWned 0f rented by the end user ^ signals 

control signals in said second set having said address rece ived by receiver 2018 are transmitted to an integrated 

portion. receiver/decoder 2020 owned or rented by the end user and 

The apparatus may be arranged to black out decryption of is connected to the end user's television set 2022. The receiver/ 

a selected program in a selected geographical location. decoder 2020 decodes the compressed MPEG-2 signal into 

Preferred features of the present invention will now be a television signal for the television set 2022. 

described, purely by way of example, with reference to the A conditional access system 3000 is connected to the 

accompanying drawings, in which: . multiplexer 2004 and the receiver/decoder 2020, and is 

FIG. 1 shows the overall architecture of a digital televi- 20 located partly in the broadcast centre and partly in the 

sion system according to the preferred embodiment of the decoder. It enables the end user to access digital television 

present invention; broadcasts from one or more broadcast suppliers. A 

FIG. 2 shows the architecture of a conditional access smartcard, capable of decrypting messages relating to com- 

system of the digital television system; mercial offers (that is, one or several television programmes 

FIG. 3 shows the structure of an Entitlement Management 25 sold by the broadcast supplier), can be inserted into the 

Message used in the conditional access system; receiver/decoder 2020. Using the decoder 2020 and 

FIG. 4 is a schematic diagram of the hardware of a smartcard, the end user may purchase events in either a 

Subscriber Authorisation System (SAS) according to a pre- subscription mode or a pay-per-view mode, 

ferred embodiment of the present invention; An interactive system 4000, also connected to the multi- 

FIG. 5 is a schematic diagram of the architecture of the 30 plexer2004 and the receiver/decoder 2020 and again located 

SAS; partly in the broadcast centre and partly in the decoder, 

FIG. 6 is a schematic diagram of a Subscriber Technical enables the end user to interact with various applications via 

Management server forming part of the SAS; a modemmed back channel 4002. 

FIG. 7 is a flow diagram of the Drocedure for automatic The conditional access system 3000 is now described in 

renewal of subscriptions as implemented by the SAS; 35 more detail. 

FIG. 8 is a schematic diagram of a group subscription With reference to FIG. 2, in overview the conditional 

bitmap used in the automatic renewal procedure; access system 3000 includes a Subscriber Authorization 

FIG. 9 shows the structure of an EMM used in the System (SAS) 3002. The SAS 3002 is connected to one or 

automatic renewal procedure; more Subscriber Management Systems (SMS) 3004, one 

FIG. 10 shows in detail the structure of the EMM; 40 SMS for each broadcast supplier, by a respective TCP-IP 

FIG. 11 is a schematic diagram of an order centralized linkage 3006 (although other types of linkage could alter- 

server when used to receive commands directly through natively be used). Alternatively, one SMS could be shared 

communications servers; between two broadcast suppliers, or one supplier could use 

FIG. 12 illustrates diagrammatically a part of FIG. 2 two SMSs, and so on. 

showing one embodiment of the present invention; 45 First encrypting units in the form of ciphering units 3008 

FIG. 13 is a schematic diagram of the order centralized utilising "mother'' smartcards 3010 are connected to the 

server when used to receive commands from the subscriber SAS by linkage 3012. Second encrypting units again in the 

authorization system to request a callback; form of ciphering units 3014 utilising mother smartcards 

FIG. 14 is a schematic diagram of the communications 3016 are connected to the multiplexer 2004 by linkage 3018. 

servers; 50 The receiver/decoder 2020 receives a "daughter" smartcard 

FIG. 15 shows the manner in which EMM emission cycle 3020. It is connected directly to the SAS 3002 by Commu- 

rate is varied according to the timing of a PPV event; nications Servers 3022 via the modemmed back channel 

FIG. 16 is a schematic diagram of a Message Emitter used 4002. The SAS sends amongst other things subscription 

to emit EMMs; rights to the daughter smartcard on request. 

FIG. 17 is a schematic diagram showing the manner of 55 The smartcards contain the secrets of one or more com- 

storage of EMMs within the Message Emitter; mercial operators. The "mother" smartcard encrypts differ- 

FIG. 18 is a schematic diagram of a smartcard; ent kinds of messages and the "daughter" smartcards decrypt 

FIG. 19 is a schematic diagram of an arrangement of the messages, if they have the rights to do so. 

zones in the memory of the smartcard; and The first and second ciphering units 3008 and 3014 

FIG. 20 is a schematic diagram of a PPV event descrip- 60 comprise a rack, an electronic VME card with software 

tion. stored on an EEPROM, up to 20 electronic cards and one 

An overview of a digital television broadcast and recep- smartcard 3010 and 3016 respectively, for each electronic 

tion system 1000 according to the present invention is card, one (card 3016) for encrypting the ECMs (Entitlement 

shown in FIG. 1. The invention includes a mostly conven- Control Messages) and one (card 3010) for encrypting the 

tional digital television system 2000 which uses the known 65 EMMs. 

MPEG-2 compression system to transmit compressed digital The operation of the conditional access system 3000 of 

signals. In more detail, MPEG-2 compressor 2002 in a the digital television system will now be described in more 
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detail with reference to the various components of the decoder 2020 owned or rented by the end user and connected 

television system 2000 and the conditional access system to the end user's television set 2022. The receiver/decoder 

3000. 2020 demultiplexes the signals to obtain scrambled pro- 

Multiplexer and Scrambler grammes with encrypted EMMs and encrypted ECMs. 

With reference to FIGS. 1 and 2, in the broadcast centre, S If the programme is not scrambled, that is, no ECM has 

the digital video signal is first compressed (or bit rate been transmitted with the MPEG-2 stream, the receiver/ 

reduced), using the MPEG-2 compressor 2002. This com- decoder 2020 decompresses the data and transforms the 

pressed signal is then transmitted to the multiplexer and ggj 1 ™ {o a si S nal for transmission to television set 

scrambler 2004 via the linkage 2006 in order to be multi- • , ,» j * n . n 

-I j • .i .« j • 4 i , j4 _ If the programme is scrambled, the receiver/decoder 2020 

plexed with other data, such as other compressed data. 10 e ^ acte ^ oorre s pondillg ECM from the MPEG-2 stream 

The scrambler generates a control word used in the and ^ £C ^ tQ the & » daaignter » smartcard 3020 of the 

scrambling process and included in the MPEG-2 stream id end ^ ^ slots ^ a housi in the receiver/decoder 

the multiplexer 2004. The control word is generated mter- 2020 , The daugnter smar tcard 3020 controls whether the end 

nally and enables the end user's integrated receiver/decoder uscr has ^ ^ to dccrypt thc ECM and to access the 

2020 to descramble the programme. 15 programme. If not, a negative status is passed to the receiver/ 

Access criteria, indicating how the programme is decoder 2020 to indicate that the programme cannot be 

commercialised, are also added to the MPEG-2 stream. The descrambled. If the end user does have the rights, the ECM 

programme may be commercialised in either one of a is decrypted and the control word extracted. The decoder 

number of "subscription" modes and/or one of a number of 2020 can then descramble the programme using this control 

"Pay Per View" (PPV) modes or events. In the subscription 20 word. The MPEG-2 stream is decompressed and translated 

mode, the end user subscribes to one or more commercial into a video signal for onward transmission to television set 

offers, or "bouquets", thus getting the rights to watch every 2022. 

channel inside those bouquets. In the preferred embodiment, Subscriber Management System (SMS) 

up to 960 commercial offers may be selected from a bouquet A Subscriber Management System (SMS) 3004 includes 

of channels. In the Pay Per View mode, the end user is 25 a database 3024 which manages, amongst others, all of the 

provided with the cap ability to purchase events as he wishes. end user files, commercial offers (such as tariffs and 

This can be achieved by either pre-booking the event in promotions), subscriptions, PPV details, and data regarding 

advance ("pre-book mode"), or by purchasing the event as end user consumption and authorization. The SMS may be 

soon as it is broadcast ("impulse mode"). In the preferred physically remote from the SAS. 

embodiment, all users are subscribers, whether or not they 30 Each SMS 3004 transmits messages to the SAS 3002 via 

watch in subscription or PPV mode, but of course PPV respective linkage 3006 which imply modifications to or 

viewers need not necessarily be subscribers. creations of Entitlement Management Messages (EMMs) to 

Both the control word and the access criteria are used to be transmitted to end users, 

build an Entitlement Control Message (ECM); this is a The SMS 3004 also transmits messages to the SAS 3002 

message sent in relation with one scrambled program; the 35 which imply no modifications or creations of EMMs but 

message contains a control word (which allows for the imply only a change in an end user's state (relating to the 

descrambling of the program) and the access criteria of the authorization granted to the end user when ordering products 

broadcast program. The access criteria and control word are or to the amount that the end user will be charged), 

transmitted to the second encrypting unit 3014 via the As described later, the SAS 3002 sends messages 

linkage 3018. In this unit, an ECM is generated, encrypted 40 (typically requesting information such as call-back informa- 

and transmitted on to the multiplexer and scrambler 2004. tion or billing information) to the SMS 3004, so that it will 

Each service broadcast by a broadcast supplier in a data be apparent that communication between the two is two- 
stream comprises a number of distinct components; for way. 

example a television programme includes a video Entitlement Management Messages (EMMs) 
component, an audio component, a sub-title component and 45 The EMM is a message dedicated to an individual end 
so on. Each of these components of a service is individually user (subscriber), or a group of end users, only (in contrast 
scrambled and encrypted for subsequent broadcast to the with an ECM, which is dedicated to one scrambled pro- 
transponder 2014. In respect of each scrambled component gramme only or a set of scrambled programmes if part of the 
of the service, a separate ECM is required. same commercial offer). Each group may contain a given 
Programme Transmission 50 number of end users, This organisation as a group aims at 

The multiplexer 2004 receives electrical signals compris- optimising the bandwidth; that is, access to one group can 

ing encrypted EMMs from the SAS 3002, encrypted ECMs permit the reaching of a great number of end users, 

from the second encrypting unit 3014 and compressed Various specific types of EMM are used in putting the 

programmes from the compressor 2002. The multiplexer present invention into practice. Individual EMMs are dedi- 

2004 scrambles the programmes and transmits the 55 cated to individual subscribers, and are typically used in the 

scrambled programmes, the encrypted EMMs and the provision of Pay Per View services; these contain the group 

encrypted ECMs as electric signals to a transmitter 2008 of identifier and the position of the subscriber in that group, 

the broadcast centre via linkage 2010. The transmitter 2008 So-called "Group" subscription EMMs are dedicated to 

transmits electromagnetic signals towards the satellite tran- groups of, say, 256 individual users, and are typically used 

sponder 2014 via uplink 2012. 60 in the administration of some subscription services. This 

Programme Reception EMM has a group identifier and a subscribers* group bitmap. 

The satellite transponder 2014 receives and processes the Audience EMMs are dedicated to entire audiences, and 

electromagnetic signals transmitted by the transmitter 2008 might for example be used by a particular operator to 

and transmits the signals on to the earth receiver 2018, provide certain free services. An "audience" is the totality of 

conventionally in the form of a dish owned or rented by the 65 subscribers having smartcards which bear the same Operator 

end user, via downlink 2016. The signals received by Identifier (OPI). Finally, a "unique" EMM is addressed to 

receiver 2018 are transmitted to the integrated receiver/ the unique identifier of the smartcard. 
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The structure of a typical EMM is now described with are connected to the SMUX3310 whilst MEs3304 and 3308 

reference to FIG. 3. Basically, the EMM, which is imple- are connected to the SMUX 3312. 

mented as a series of digital data bits, comprises a header Each of the three main components of the SAS (the 

3060, the EMM proper 3062, and a signature 3064. The Subscription Chain area, the PPV Chain area and the EMM 

header 3060 in turn comprises a type identifier 3066 to S Injector) are now considered in more detail, 

identify whether the type is individual, group, audience or Subscription Chain Area 

some other type, a length identifier 3068 which gives the Considering first the Subscription Chain area 3100, the 

length of the EMM, an optional address 3070 for the EMM, Command Interface 3102 is primarily for despatching mes- 

an operator identifier 3072 and a key identifier 3074. The sages from the SMS 3004 to the STM server 3104, as well 

EMM proper 3062 of course varies greatly according to its 10 as to the OCS 3206, and from the OCS to the SMS. The 

type. Finally, the signature 3064, which is typically of 8 Command Interface takes as input from the SMS either 

bytes long, provides a number of checks against corruption direct commands or batch files containing commands. It 

of the remaining data in the-EMM. performs syntactic analysis on the messages coming from 

Subscriber Authorization System (SAS) the STM server, and is able to emit accurate messages when 

The messages generated by the SMS 3004 are passed via 15 an error occurs in a message (parameter out of range, 

linkage 3006 to the Subscriber Authorization System (SAS) missing parameter, and so on). It traces incoming commands 

3002, which in turn generates messages acknowledging in textual form in a trace file 3110 and also in binary form 

receipt of the messages generated by the SMS 3004 and in a replay file 3112 in order to be able to replay a series of 

passes these acknowledgements to the SMS 3004. commands. Traces can be disabled and the size of files 

As shown in FIG. 4, at the hardware level the SAS 20 limited, 
comprises in known fashion a mainframe computer 3050 (in Detailed discussion of the STM server 3104 is now 

the preferred embodiment a DEC machine) connected to one provided with particular reference to FIG. 6. The STM 

or more keyboards 3052 for data and command input, one or server is effectively the main engine of the Subscription 

more Visual Display Units (VDUs) 3054 for display of Chain area, and has the purpose of managing free rights, the 

output information and data storage means 3056. Some 25 creation of new subscribers and the renewal of existing 

redundancy in hardware may be provided. subscribers. As shown in the figure, commands are passed 

At the software level the SAS runs, in the preferred on to the Message Generator 3106, albeit in a different 

embodiment on a standard open VMS operating system, a format from that in which the commands are passed to the 

suite of software whose architecture is now described in STM server. For each command, the STM server is arranged 

overview with reference to FIG. 5; it will be understood that 30 to send an acknowledgement message to the CI only when 

the software could alteratively be implemented in hardware. the relevant command has been successfully processed and 

In overview the SAS comprises a Subscription Chain area sent to the MG. 
3100 to give rights for subscription mode and to renew the The STM server includes a subscriber database 3120, in 

rights automatically each month, a Pay Per View Chain area which all the relevant parameters of the subscribers are 

3200 to give rights for PPV events, and an EMM Injector 35 stored (smart card number, commercial offers, state, group 

3300 for passing EMMs created by the Subscription and and position in the group, and so on). The database performs 

PPV chain areas to the multiplexer and scrambler 2004, and semantic checks of the commands sent by the CI 3102 

hence to feed the MPEG stream with EMMs. If other rights against the content of the database, and updates the database 

are to be granted, such as Pay Per File (PPF) rights in the when the commands are valid. 

case of downloading computer software to a user's Personal 40 The STM server further manages a First In First Out 

Computer, other similar areas are also provided. (FIFO) buffer 3122 between the STM server and the MG, as 

One function of the SAS 3002 is to manage the access well as a backup disk FIFO 3124. The purpose of the FIFOs 

rights to television programmes, available as commercial is to average the flow of commands from the CI if the MG 

offers in subscription mode or sold as PPV events according is not able to respond for a while for any reason. They can 

to different modes of commercialisation (pre-book mode, 45 also ensure that in the case of a crash of the STM server or 

impulse mode). The SAS 3002, according to those rights and MG no command will be lost, since the STM server is 

to information received from the SMS 3004, generates arranged to empty (that is, send to the MG) its FIFOs when 

EMMs for the subscriber. restarted. The FIFOs are implemented as files. 

The Subscription Chain area 3100 comprises a Command The STM server includes at its core an automatic renewal 

Interface (CD 3102, a Subscriber Technical Management 50 server 3126 which automatically generates renewals, and, if 

(STM) server 3104, a Message Generator (MG) 3106, and required by the operators, free rights. In this context, the 

the Ciphering Unit 3008. generation of renewals may be thought of as including the 

The PPV Chain area 3200 comprises an Authorisation generation of rights for the first time, although it will be 
Server (AS) 3202, a relational database 3204 for storing understood that the generation of new rights is initiated at 
relevant details of the end users, a local blacklist database 55 the SMS. As will become apparent, the two can be treated by 
3205, Database Servers 3206 for the database, an Order roughly the same commands and EMMs. 
Centralized Server (OCS) 3207, a Server for Programme Having the STM separate from the SAS, and the auto- 
Broadcaster (SPB) 3208, a Message Generator (MG) 3210 matic renewal server within the SAS rather than (in known 
whose function is basically the same as that for the Sub- systems) in the SMS 3004, is a particularly important 
scription Chain area and is hence not described further in 60 feature, since it can significantly reduce the number of 
any detail, and the Ciphering Unit 3008. commands which need to be passed from the SMS to the 

The EMM Injector 3300 comprises a plurality of Message SAS (bearing in mind that the SMS and SAS may be in 

Emitters (MEs) 3302, 3304, 3306 and 3308 and Software different locations and operated by different operators). In 

Multiplexers (SMUXs) 3310 and 3312. In the preferred fact, the two main commands required from the SMS are 

embodiment, there are two MEs, 3302 and 3304 for the 65 merely commands that a new subscription should be started 

Message Generator 3106, with the other two MEs 3306 and and that an existing subscription should be stopped (for 

3308 for the Message Generator 3210. MEs 3302 and 3306 example in the case of non-payment). By minimising com- 
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mand exchange between the SMS and SAS, the possibility 
of failure of command transfer in the linkage 3006 between 
the two is reduced; also, the design of the SMS does not need 
to take into account the features of the conditional access 
system 3000 generally. S 

Automatic renewal proceeds in the fashion indicated in 
the flow diagram of FIG. 7. In order to reduce bandwidth, 
and given that a very high percentage of all renewals are 
standard, renewal proceeds in groups of subscribers; in the 
preferred embodiments there are 256 individual subscribers 10 
per group. The flow diagram begins with the start step 3130, 
and proceeds to step 3132 where a monthly activation of the 
renewal function is made (although of course it will be 
appreciated that other frequencies are also possible). With a 
monthly frequency, rights are given to the end user for the 15 
current month and all of the following month, at which point 
they expire if not renewed. 

In step 3134 the subscriber database 3120 is accessed in 
respect of each group and each individual within that group 
to determine whether rights for the particular individual are 20 
to be renewed. 

In step 3136, a group subscription bitmap is set up 
according to the contents of the subscriber database, as 
shown in FIG. 8. The bitmap comprises a group identifier (in 
this case Group 1 — "Gl") 3138 and 256 individual sub- 25 
scriber zones 3140. The individual bits in the bitmap are set 
to 1 or zero according to whether or not the particular 
subscriber is to have his rights renewed. A typical set of 
binary data is shown in the figure. 

In step 3142 the appropriate commands, including the 30 
group subscription bitmap, are passed to the Message Gen- 
erator 3106. In step 3143 the Message Generator sets an 
obsolescence date to indicate to the smartcard the date 
beyond which the particular subscription EMM is not valid; 
typically this date is set as the end of the next month. 35 

In step 3144 the Message Generator generates from the 
commands appropriate group subscription EMMs and asks 
the Ciphering Unit 3008 to cipher the EMMs, the ciphered 
EMMs being then passed to the EMM Injector 3300, which, 
in step 3146, injects the EMMs into the MPEG-2 data 40 
stream. 

Step 3148 indicates that the above described procedure is 
repeated for each and every group. The process is finally 
brought to an end at stop step 3150. 

The flow diagram described above with reference to FIG. 45 
7 relates in fact specifically to the renewal of subscriptions. 
The STM also manages in a similar way free audience rights 
and new subscribers. 

In the case of free audience rights, available for specific 
television programmes or groups of such programmes, these 50 
are made available by the STM issuing a command to the 
Message Generator to generate appropriate audience EMMs 
(for a whole audience) with an obsolescence date a given 
number of days (or weeks) hence. The MG computes the 
precise obsolescence date based on the STM command. 55 

In the case of new subscribers, these are dealt with in two 
stages. Firstly, on purchase the smartcard in the receiver/ 
decoder 2020 (if desired by the operator) affords the sub- 
scriber free rights for a given period (typically a few days). 
This is achieved by generating a bitmap for the subscriber 60 
which includes the relevant obsolescence date. 

The subscriber then passes his completed paperwork to 
the operator managing the subscriber (at the SMS). Once the 
paperwork has been processed, the SMS supplies to the SAS 
a start command for that particular subscriber. On receipt by 65 
the SAS of the start command, the STM commands the MG 
to assign a unique address to the new subscriber (with a 
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particular group number and position within the group) and 
to generate a special, so-called "commercial offer" subscrip- 
tion EMM (as opposed to the more usual "group" subscrip- 
tion EMM used for renewals) to provide the particular 
subscriber with rights until the end of the next month. From 
this point renewal of the subscriber can occur automatically 
as described above. By this two stage process it is possible 
to grant new subscribers rights until the SMS issues a stop 
command. 

It is to be noted that the commercial offer subscription 
EMM is used for new subscribers and for reactivation of 
existing subscribers. The group subscription EMM is used 
for renewal and suspension purposes. 

With reference to FIG. 9, a typical subscription EMM 
proper (that is, ignoring the header and signature) generated 
by the above procedure comprises the following main 
portions, namely typically a 256 bit subscription (or sub- 
scribers' group) bitmap 3152, 128 bits of management 
ciphering keys 3154 for the ciphering of the EMM, 64 bits 
of each exploitation ciphering key 3156 to enable the 
smartcard 3020 to decipher a control word to provide access 
to broadcast programmes, and 16 bits of obsolescence date 
3158 to indicate the date beyond which the smartcard will 
ignore the EMM. In fact in the preferred embodiment three 
exploitation keys are provided, one set for the present 
month, one set for the next month, and one for resume 
purposes in the event of system failure. 

In more detail, the group subscription EMM proper has all 
of the above components, except the management ciphering 
keys 3154. The commercial offer subscription EMM proper 
(which is for an individual subscriber) includes instead of 
the full subscribers 3 group bitmap 3152 the group ID fol- 
lowed by the position in the group, and then management 
ciphering keys 3154 and three exploitation keys 3156, 
followed by the relevant obsolescence date 3158. 

The Message Generator 3106 serves to transform com- 
mands issued by the STM server 3104 into EMMs for 
passing to the Message Emitter 3302. With reference to FIG. 
5, firstly, the MG produces the EMMs proper and passes 
them to the Ciphering Unit 3008 for ciphering with respect 
to the management and exploitation keys. The CU completes 
the signature 3064 on the EMM (see FIG. 3) and passes the 
EMM back to the MG, where the header 3060 is added. The 
EMMs which are passed to the Message Emitter are thus 
complete EMMs. The Message Generator also determines 
the broadcast start and stop time and the rate of emission of 
the EMMs, and passes these as appropriate directions along 
with the EMMs to the Message Emitter. The MG only 
generates a given EMM once; it is the ME which performs 
its cyclic transmission. 

Again with reference to FIG. 5, the Message Generator 
includes its own EMM database 3160 which, for the lifetime 
of the relevant EMM, stores it. It is erased once its emission 
duration has expired. The database is used to ensure con- 
sistency between the MG and ME, so that for example when 
an end user is suspended the ME will not continue to send 
renewals. In this regard the MG computes the relevant 
operations and sends them to the ME. 

On generation of an EMM, the MG assigns a unique 
identifier to the EMM. When the MG passes the EMM to the 
ME, it also passes the EMM ID. This enables identification 
of a particular EMM at both the MG and the ME. 

Also concerning the Subscription Chain area, the Mes- 
sage Generator includes two FIFOs 3162 and 3164, one for 
each of the relevant Message Ermitters 3302 and 3304 in the 
EMM Injector 3300, for storing the ciphered EMMs. Since 
the Subscription Chain area and EMM Injector may be a 
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significant distance apart, the use of FIFOs can allow full 
continuity in EMM transmission even if the links 3166 and 
3168 between the two fail. Similar FIFO's are provided in 
the Pay Per View Chain area. 

One particular feature of the Message Generator in par- 
ticular and the conditional access system in general concerns 
the way that it reduces the length of the EMM proper 3062 
by mixing parameter length and identifier to save space. This 
is now described with reference to FIG. 10 which illustrates 
an exemplary EMM (in fact a PPV EMM, which is the 
simplest EMM). The reduction in length occurs in the Pid 
(Packet or "Parameter" identifier) 3170. This comprises two 
portions, the actual ID 3172, and the length parameter for the 
packet 3174 (necessary in order that the start of the next 
packet can be identified). The whole Pid is expressed in just 
one byte of information, 4 bits being reserved for the ID, and 
four for the length. Because 4 bits is not sufficient to define 
the length in true binary fashion, a different correspondence 
between the bits and the actual length is used, this corre- 
spondence being represented in a look-up table, stored in 
storage area 3178 in the Message Generator (see FIG. 5). 
The correspondence is typically as follows: 

0000-0 

0001=1 

0010=2 

0011=3 

0100=4 

0101-5 

0110=6 

0111=7 

1000=8 

1001=9 

1010-10 

1011=11 

1100=12 

1101=16 

1110=24 

1111-32 

It will be seen that the length parameter is not directly 
proportional to the actual length of the packet; the relation- 
ship is in part more quadratic rather than linear. This allows 
for a greater range of packet length. 
Pay Per View Chain Area 

Concerning the Pay Per View Chain area 3200, with 
reference to FIG. 5 in more detail the Authorisation Server 
3202 has as its client the Order Centralized Server 3207, 
which requests information about each subscriber which 
connects to the Communications Servers 3022 to purchase a 
PPV product. 

If the subscriber is known from the AS 3202, a set of 
transactions takes place. If the subscriber is authorized for 
the order, the AS creates a bill and sends it to the OCS. 
Otherwise, it signals to the OCS that the order is not 
authorized. 

It is only at the end of this set of transactions that the AS 
updates the end users database 3204 via the database servers 
(DBAS) 3206, if at least one transaction was authorized; this 
optimizes the number of database accesses. 

The criteria according to which the AS authorizes pur- 
chase are stored in the database, accessed through DBAS 
processes. In one embodiment, the database is the same as 
the database accessed by the STM. 

Depending on consumer profile, the authorization may be 
denied (PPV_J 7 orbidden,Casino_Forbidden . . . ). These 
kind of criteria are updated by STM 3104, on behalf of the 
SMS 3004. 
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Other parameters are checked, such as limits allowed for 
purchase (either by credit card, automatic payment, or 
number of authorized token purchases per day). 

In case of payment with a credit card, the number of the 
5 card is checked against a local blacklist stored in the local 
blacklist database 3205. 

When all the verifications are successful, the AS: 

1. Generates a bill and sends it to the OCS, which 
completes this bill and stores it in a file, this file being 

10 later sent to the SMS for processing (customer actual 
billing); and 

2. Updates the database, mainly to set new purchase 
limits. This check-and-generate-bill-if-OK mechanism 
applies for each command a subscriber may request 

25 during a single connection (it is possible to order e.g. 5 
movies in a single session). * 
It is to be noted that the AS has a reduced amount of 
information concerning the subscriber, by comparison with 
that held by the SMS. For example, the AS does not hold the 

20 name or address of the subscriber. On the other hand, the AS 
does hold the smartcard number of the subscriber, the 
subscriber's consumer category (so that different offers can 
be made to different subscribers), and various flags which 
state whether, for example, the subscriber may purchase on 

25 credit, or he is suspended or his smartcard has been stolen. 
Use of a reduced amount of information can help to reduce 
the amount of time taken to authorize a particular subscriber 
request. 

The main purpose of the DBASs 3206 is to increase 
30 database performance seen from the AS, by paralleling the 
accesses (so actually it does not make much sense to define 
a configuration with only one DBAS). An AS parameter 
determines how many DBASes should connect. A given 
DBAS may be connected to only one AS. 
35 The OCS 2307 mainly deals with PPV commands. It 
operates in several modes. 

Firstly, it operates to process commands issued by the 
SMS, such as product refreshment (for instance, if the bill is 
already stored by the SMS, no bill is generated by the OCS), 
40 update of the wallet in the smartcard 3020, and session 
cancellation/update. 
The various steps in the procedure are: 

1. Identifying the relevant subscriber (using the AS 3202); 

2. If valid, generate adequate commands to the Message 
45 Generator, in order to send an appropriate EMM. 

Commands may be: 

Product commands, 

Update of the wallet, 

Session erasure. 
50 Note that these operations do not imply creation of billing 
information, since billing is already known from the SMS. 
These operations are assimilated to "free products" pur- 
chase. 

Secondly, the OCS deals with commands received from 
55 the subscribers through the Communications Servers 3022. 
These may be received either via a modem connected to the 
receiver/decoder 2020, or by voice activation via the tele- 
phone 4001, or by key activation via a MINITEL, PRESTEL 
or like system where available. 
60 Thirdly, the OCS deals with callback requests issued by 
the SMS, These last two modes of operation are now 
discussed in more detail. 

In the second type of mode described above it was stated 
that the OCS deals with commands received directly from 
65 the end user (subscriber) through the Communications Serv- 
ers 3022. Iliese include product orders (such as for a 
particular PPV event), a subscription modification requested 
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by the subscriber, and a reset of a parental code (a parental the connection from the end user to the Communications 

code being a code by which parents may restrict the right of Servers 3022 of the SAS 3002 being through the SMS 3004 

access to certain programmes or classes of programmes). the connection is directly to the SAS 3002. 

The way in which these commands are dealt with is now In fact, as directly mentioned two direct connections are 

described in more detail with reference to FIG. 11. 5 provided. 

Product orders by a subscriber involve the following ^ first direct connection is by a voice link via a 

steDS . telephone 4001 and appropriate telephone line (and/or by 

' . r . , , , A „ , , . , . MINITELor like connection where available) where the end 

1. Identifying through the AS the caller who is making a users ^ haye tQ input a series of voke commands or ^de 

call through the CS 3022 ordering a particular product; num bers but time is saved compared with the communica- 

2. Checking the caller's request validity, again using the 10 tion being via the SMS 3004. 

AS (where the order is placed using the receiver/ The second direct connection is from the receiver/decoder 

decoder 2020, this is achieved by verifying the smart- 2020 and the input of data is achieved automatically by the 

card 3020 details); end user inserting his own daughter smartcard 3020 thus 

3. Ascertain the price of the purchase; relieving the end user of the job of having to input the 

a r-u i *u ♦ , _ „„ t i 1o . ^ ,- t 15 relevant data which in turn reduces the time taken and the 

4. Check that the price does not exceed the caller s credit V1 ... , c . ,. . . 
... r likelihood of errors in making that input. 

c c ' A further important feature which arises out of the above 

5. Receiving a partial bill from the AS; discussion is concerned with reducing the time taken for the 

6. Filling additional fields in the bill to form a completed resulting EMM to be transmitted to the end user in order to 
bill; 20 initiate viewing by the end user of the selected product. 

7. Adding the completed bill to a billing information In broad terms, and with reference to FIG. 12, the feature 
storage file 3212 for later processing; and is again achieved by providing the end user's receiver/ 

8. Sending corresponding command(s) to the PPV Mes- dccodcr 2020 ^ the capability of communicating directly 
sage Generator 3210 to generate the relevant EMM(s). Wlth the Communications Servers 3022 associated with the 

The EMM(s) is sent either on the modem line 4002 if the 25 SAS 3002 - 

consumer placed the product order using the receiver/ As described earlier the integrated receiver/decoder 2020 

decoder 2020 (more details of this are described later), or * connected directly to the Communications Servers 3022 

else it is broadcast. The one exception to this is where there b V the modemmed back channel 4002 so that commands 

is some failure of the modem connection (in the case where &om the decoder 2020 are processed by the SAS 3002, 

the consumer places the order using the receiver/decoder); in 30 messages generated (including EMMs) and then sent back 

this event the EMM is broadcast over the air. directly to the decoder 2020 through the back channel 4002. 

A subscription modification requested by a subscriber A protocol is used in the communication between the CS 

involves- 3022 and me receiver/decoder 2020 (as described later), so 

1. Identifying the caller (using the AS); th ° u^T^Tf ,° f F** 1 °1 ^ 

J .„ , °L , T , , „ 35 relevant EMM, thereby adding certainty to the procedure. 

2. Sending information to the Command Interface; the CI ^ for c , m ^ case of a prc -book mode the 
in turn forwards this information to the SMS; and SAS ^ receives messages from the end ^ via the 

3. Via the CI, the OCS then receives an answer from the smartcard and decoder 2020 via its modem and via the 
SMS (in terms of the cost of the modification, if the telephone line 4002, requesting access to a specific event/ 
modification is possible). 40 pro duct, and returns a suitable EMM via the telephone line 

If modification was requested using the receiver/decoder, 4 qo2 and modem to the decoder 2020, the modem and 

the OCS generates a confirmation to the SMS. Otherwise, decoder being preferably located together in a Set-Top-Box 

for example in the case of phone or Minitel, the subscriber (STB). This is thus achieved without having to transmit the 

is prompted for confirmation and this answer sent to the EMM in the MPEG-2 data stream 2002 via the multiplexer 

SMS via the OCS and the Q. 45 and scrambler 2004, the uplink 2012, satellite 2014 and 

Reset of a parental code involves: datalink 2016 to enable the end user to view the event/ 

1. Identifying the caller (using AS); and product. This can save considerably on time and bandwidth. 

2. Sending a command to the MG to generate an appro- Virtual certainty is provided that as soon as the subscriber 
priate EMM bearing an appropriate reset password. has paid for his purchase the EMM will arrive at the 

In the case of reset of parental code, the command to reset 50 receiver/decoder 2020. 

the code is for security reasons not permitted to originate In the third type of mode of operation of the OCS 3207 

from the receiver/decoder. Only the SMS, telephone and described above, the OCS deals with callback requests 

MINITEL or like can originate such a command. Hence in issued by the SAS. This is illustrated with reference to FIG. 

this particular case the EMM(s) are broadcast only on air, 13. Typical callback requests have the purpose of ensuring 

never on the telephone line. 55 that the receiver/decoder 2020 calls back the SAS via the 

It will be understood from the above examples of different modemmed back channel 4002 with the information that the 

modes of operation of the OCS that the user can have direct SAS requires of the receiver /decoder, 

access to the SAS, and in particular the OCS and AS, in that As instructed by the Command Interface 3102, the sub- 

the Communications Servers are directly connected to the scription chain Message Generator 3106 generates and sends 

SAS, and in particular the OCS. This important feature is 60 to the receiver/decoder 202 a callback EMM. This EMM is 

concerned with reducing the time for the user to communi- ciphered by the Ciphering Unit 3008 for security reasons, 

cate his command to the SAS. The EMM may contain the time/date at which the receiver/ 

This feature is illustrated further with reference to FIG. decoder should wake up and perform a callback on its own, 

12, from which it can be seen that the end user's Set-Top- without being explicitly solicited; the EMM may also typi- 

Box, and in particular its receiver/decoder 2020, has the 65 cally contain the phone numbers which the terminal must 

capability of communicating directly with the Communica- dial, the number of further attempts after unsuccessful calls 

tions Servers 3022 associated with the SAS 3002. Instead of and the delay between two calls. 
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When receiving the EMM, or at the specified time-date, 
the receiver/decoder connects to the Communications Serv- 
ers 3022. The OCS 3207 first identifies the caller, using the 
AS 3202, and verifies certain details, such as smartcard 
operator and subscriber details. The OCS then asks the 
smartcard 3020 to send various ciphered information (such 
as the relevant session numbers, when the session was 
watched, how many times the subscriber is allowed to view 
the session again,, the way in which the session was viewed, 
the number of remaining tokens, the number of prebooked 
sessions, etc). This information is deciphered by the PPV 
chain Message Generator 3210, again using the Ciphering 
Unit 3008. The OCS adds this information to a callback 
information storage file 3214 for later processing and pass- 
ing to the SMS 3004. The information is ciphered for 
security reasons. The whole procedure is repeated until there 
is nothing more to be read from the smartcard. 

One particular preferred feature of the callback facility is 
that before reading the smartcard (so just after the identifi- 
cation of the caller using the AS 3202 as described above) 
a check is made by the SAS 3002 that the receiver/decoder 
is indeed a genuine one rather than a pirated version or 
computer simulation. Such a check is carried out in the 
following manner. The SAS generates a random number, 
which is received by the receiver/decoder, ciphered, and 
then returned to the SAS. The SAS deciphers this number. 
If the deciphering is successful and the original random 
number is retrieved, it is concluded that the receiver/decoder 
is genuine, and the procedure continues. Otherwise, the 
procedure is discontinued. 

Other functions which may occur during the callback are 
erasure of obsolete sessions on the smartcard, or filling of 
the wallet (this latter also being described later under the 
section entitled "Smartcard"). 

Also as regards the Pay Per View Chain area 3200, 
description is now made of the Communications Servers 
3022. At the hardware level, these comprise in the preferred 
embodiment a DEC Four parallel processor machine. At the 
software architecture level, with reference to FIG. 14, in 
many respects the Communications Servers are conven- 
tional. One particular divergence from conventional designs 
arises from the fact that the Servers must serve both receiver/ 
decoders 2020 and voice communication with conventional 
telephones 4001, as well possibly as MINITEL or like 
systems. 

It will be noted in passing that two Order Centralized 
Servers 3207 are shown in FIG. 14 (as "OCS1" and 
"OCS2"). Naturally any desired number may be provided. 

The Communication Servers include two main servers 
("CS1" and "CS2") as well as a number of frontal servers 
("Frontal 1" and "Frontal 2 J '); whilst two frontal servers are 
shown in the figure, typically 10 or 12 may be provided per 
main server. Indeed, although two main servers CS 1 and 
CS2 and two frontal servers, Frontal 1 and Frontal 2, have 
been shown, any number could be used. Some redundancy 
is usually desirable. 

CS1 and CS2 are coupled to OCS1 and OCS2 via high 
level TCP/IP links 3230, whilst CS1 and CS2 are coupled to 
Frontal 1 and Frontal 2 via further TCP/IP links 3232. 

As illustrated, CS1 and CS2 comprise servers for 
"SENDR" (transmission), "RECVR" (reception), "VTX" 
(MINITEL, PRESTEL or the like), "VOX" (voice 
communication), and "TRM" (communication with the 
receiver/decoder). These are coupled to the "BUS" for 
communication of signals to the Frontal servers. 

CS1 and CS2 communicate directly with the receiver/ 
decoders 2020 via their modemmed back channels 4002 
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using the X25 public network common protocol. The rela- 
tively low-level protocol between the Communications 
Servers 3022 and the receiver/decoders 3020 is in one 
preferred embodiment based upon the V42 standard inter- 
national CCITT protocol, which provides reliability by 
having error detection and data re-transmission facilities, 
and uses a checksum routine to check the integrity of the 
re -transmission. An escape mechanism is also provided in 
order to prevent the transmission of disallowed characters. 

On the other hand, voice telephone communication is 
carried out via the Frontal Communications Servers, each 
capable of picking up, say, 30 simultaneous voice connec- 
tions from the connection 3234 to the local telephone 
network via the high speed "T2" (El) standard telephony 
ISDN lines. 

Three particular functions of the software portion of the 
Communications Servers (which could of course alterna- 
tively be implemented fully in hardware) are firstly to 
convert the relatively low level protocol information 
received from the receiver/decoder into the relatively high 
level protocol information output to the OCS, secondly to 
attenuate or control the number of simultaneous connections 
being made, and thirdly to provide several simultaneous 
channels without any mixing. I this last regard, the Com- 
munications Servers play the role of a form of multiplexer, 
with the interactions in a particular channel being defined by 
a given Session ID (identifier), which is in fact used through- 
out the communication chain. 

Finally as regards the Pay Per View Chain area 3200, and 
30 with reference again to FIG. 5, the Server for Programme 
Broadcast (SPB) 3208 is coupled to one or more Programme 
Broadcasters 3250 (which would typically be located 
remotely from the SAS) to receive programme information. 
The SPB filters out for further use information correspond- 
35 ing to PPV events (sessions). 

A particularly important feature is that the filtered pro- 
gramme event information is passed by the SPB to the MG 
which in turn sends a directive (control command) to the ME 
to change the rate of cyclic emission of the EMMs in given 
40 circumstances; this is done by the ME finding all EMMs 
with the relevant session identifier and changing the cycle 
rate allocated to such EMMs. This feature might be thought 
of as a dynamic allocation of bandwidth for specific EMMs. 
Cyclic EMM emission is discussed in more detail in the 
section below concerned with the EMM Injector. 

The circumstances in which the cycle rate is changed are 
now described with reference to FIG. 15, which demon- 
strates how cycle rate 3252 is raised a short while (say 10 
minutes) before a particular PPV programme event until the 
end of the event from a slow cycle rate of say once every 30 
minutes to a fast cycle rate of say once every 30 seconds to 
1 minute in order to meet the anticipated extra user demand 
for PPV events at those times. In this way bandwidth can be 
allocated dynamically according to the anticipated user 
demand. This can assist in reducing the overall bandwidth 
requirement. 

The cycle rate of other EMMs may also be varied. For 
example the cycle rate of subscription EMMs may be varied 
by the Multiplexer and Scrambler 2004 sending the appro- 
priate bitrate directive. 
EMM Iniector 

Concerning the EMM Injector 3300, details of the Mes- 
sage Emitters 3302 to 3308, forming part of the EMM 
Injector and acting as output means for the Message 
Generator, are now described with reference to FIG. 16, 
Their function is take the EMMs and to pass them cyclically 
(in the manner of a carousel) via respective links 3314 and 
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3316 to the Software Multiplexers 3310 and 3312 and 
thence to the hardware multiplexers and scramblers 2004. In 
return the software multiplexers and scramblers 2004 gen- 
erate a global bitrate directive to control the overall cycling 
rate of the EMMs; to do so, the MEs take into account 
various parameters such as the cycle time, the size of EMM, 
and so on. In the figure, EMM_X and EMM_Y are group 
EMMs for operators X and Y, whilst EMM_Z are other 
EMMs for either operator X or operator Y. 

Further description proceeds for an exemplary one of the 
Message Emitters; it will be appreciated that the remaining 
MEs operate in similar fashion. The ME operates under 
control of directives from the MG, most notably transmis- 
sion start and stop time and emission rate, as well as session 
number if the EMM is a PPV EMM. In relation to the 
emission rate, in the preferred embodiment the relevant 
directive may take one of five values from Very fast to Very 
slow. The numeric values are not specified in the directive, 
but rather the ME maps the directive to an actual numeric 
value which is supplied by the relevant part of the SAS. In 
the preferred embodiment, the 5 emission rates are as 
follows: 

1. Very fast — every 30 seconds 

2. Fast — every minute 

3. Medium — every 15 minutes 

4. Slow — every 30 minutes 

5. Very slow — every 30 minutes 

The ME has first and second databases 3320 and 3322. 
The first database is for those EMMs which have not yet 
achieved their broadcast date; these are stored in a series of 
chronological files in the database. The second database is 
for EMMs for immediate broadcast. In the event of a system 
crash, the ME is arranged to have the ability to re -read the 
relevant stored file and perform correct broadcast. All the 
files stored in the databases are updated upon request from 
the MG, when the MG wishes to maintain consistency 
between incoming directives and EMMs already sent to the 
ME. The EMMs actually being broadcast are also stored in 
Random Access Memory 3324. 

A combination of the FIFOs 3162 and 3164 in the 
Message Generator and the databases 3320 and 3322 in the 
Message Emitter means that the two can operate in standa- 
lone mode if the link 3166 between them is temporarily 
broken; the ME can still broadcast EMMs. 

The Software Multiplexers (SMUX) 3310 and 3312 pro- 
vide an interface between the MEs and the hardware mul- 
tiplexers 2004. lln the preferred embodiment, they each 
receive EMMs from two of the MEs, although in general 
there is no restriction on the number of MEs that can be 
connected with one SMUX. The SMUXs concentrate the 
EMMs and then pass them according to the type of EMM to 
the appropriate hardware multiplexer. This is necessary 
because the hardware multiplexers take the different types of 
EMMs and place them at different places in the MPEG-2 
stream. The SMUX's also forward global bitrate directives 
from the hardware multiplexers to the MEs. 

One particularly important feature of the ME is that it 
emits EMMs in random order. The reason for this is as 
follows. The Message Emitter has no ability to sense or 
control what it emits to the multiplexer. Hence it is possible 
that it may transmit two EMMs which are to be received and 
decoded by the receiver/decoder 2020 back to back. In such 
circumstances, further, it is possible that if the EMMs are 
insufficiently separated the receiver/decoder and smartcard 
will be unable to sense and decode properly the second of 
the EMMs. Cyclically emitting the EMMs in random order 
can solve this problem. 
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The manner in which randomization is achieved is now 
described with reference to FIG. 17; in the preferred 
embodiment the necessary software logic is implemented in 
the ADA computer language. A particularly important part 
of the randomization is the correct storage of the EMMs in 
the databases 3320 and 3322 (which are used for backup 
purposes) and in the RAM 3324. For a particular cycle rate 
and operator, the EMMs are stored in a two-dimensional 
array, by rank 3330 (going say from A to Z) and number in 
the rank 3332 (going from 0 to N). A third dimension is 
added by cycle rate 3334, so that there are as many two- 
dimensional arrays as there are cycle rates. In the preferred 
embodiment there are 256 ranks and typically 200 or 300 
EMMs in each rank; there are 5 cycle rates. A final dimen- 
sion to the array is added by the presence of different 
operators; there are as many three-dimensional arrays as 
there are operators. Storage of the data in this fashion can 
permit rapid retrieval in the event that the MG wants to 
delete a particular EMM. 

Storage of the EMMs takes place according to the "hash" 
algorithm (otherwise known as the "one-way hash func- 
tion". This operates on a modulo approach, so that succes- 
sive ranks are filled before a higher number in the rank is 
used, and the number of EMMs in each rank remains 
roughly constant. The example is considered of there being 
256 ranks. When the MG sends the ME an EMM with 
identifer (ID) 1, the ank "1" is assigned to this EMM, and it 
takes the first number 3332 in the rank 3330. The EMM with 
ID 2 is assigned the rank "2", and so on, up to the rank 256. 
The EMM with ID 257 is assigned the rank "1" again (based 
on the modulo function), and takes the second number in the 
first rank, and so on. 

Retrieval of a specific EMM, for example when deletion 
of a specific EMM is requested by the MG, is effected by 
means of the inverse of the above. The hash algorithm is 
applied to the EMM ID to obtain the rank, after which the 
number in the rank is found. 

The actual randomization occurs when the EMMs are, on 
a cyclical basis, retrieved from RAM 3324 using the ran- 
domization means 3340 which is implemented in the hard- 
ware and/or software of the Message Emitter. The retrieval 
is random, and again based on the hash algorithm. Firstly, a 
random number (in the above example initially in the range 
1 to 256) is chosen, to yield the particular rank of interest. 
Secondly, a further random number is chosen to yield the 
particular number in the rank. The further random number is 
selected according to the total number of EMMs in a given 
rank. Once a given EMM has been selected and broadcast, 
it is moved to a second identical storage area in the RAM 
3324, again using the hash function. Hence the first area 
diminishes in size as the EMMs are broadcast, to the extent 
that, once a complete rank has been used, this is deleted. 
Once the first storage area is completely empty, it is replaced 
by the second storage area before a new round of EMM 
broadcast, and vice versa. 

In the above fashion, after two or three cycles of the 
EMMs, statistically the chances of any two EMMs destined 
for the same end user being transmitted back to back is 
negligible. 

At regular intervals whilst the EMMs are being stored the 
computer 3050 computes the number of bytes in storage and 
from this computes the bitrate of emission given the global 
bitrate directive from the multiplexer and software multi- 
plexer. 

Reference was made above to the backup databases 3320 
and 3322. These are in fact in the preferred embodiment 
sequential file stores, which hold a backup version of what 


03/26/2004, EAST Version: 1.4.1 


US 6,4i 

21 

is in the RAM 3324. In the event of failure of the Message 
Emitter and subsequent restart, or more generally when the 
ME is being restarted for whatever reason, a link is made 
between the RAM and the databases, over which the stored 
EMMs are uploaded to RAM. In this way, the risk of losing 
EMMs in the event of failure can be removed. 

Similar storage of PPV EMMs occurs to that described 
above in relation to subscription EMMs, with the rank 
typically corresponding to a given operator and the number 
in the rank corresponding to the session number. 
Smartcard 

A daughter, or "subscriber", smartcard 3020 is schemati- 
cally shown in FIG. 18 and comprises an 8 bit micropro- 
cessor 110, such as a Motorola 6805 microprocessor, having 
an input/output bus coupled to a standard array of contacts 
120 which in use are connected to a corresponding array of 
contacts in the card reader of the receiver/decoder 2020, the 
card reader being of conventional design. The microproces- 
sor 110 is also provided with bus connections to preferably 
masked ROM 130, RAM 140 and EEPROM 150. The 
smartcard complies with the ISO 7816-1 ., 7816-2 and 7816-3 
standard protocols which determine certain physical param- 
eters of the smartcard, the positions of the contacts on the 
chip and certain communications between the external sys- 
tem (and particularly the receiver/decoder 2020) and the 
smartcard respectively and which will therefore not be 
further described here. One function of the microprocessor 
110 is to manage the memory in the smartcard, as now 
described. 

The EEPROM 150 contains certain dynamically -created 
operator zones 154, 155, 156 and dynamically-created data 
zones which will now be described with reference to FIG. 
19. 

Referring to FIG. 19, EEPROM 150 comprises a perma- 
nent "card ID" (or manufacturer) zone 151 of 8 bytes which 
contains a permanent subscriber smartcard identifier set by 
the manufacturer of the smartcard 3020. 

When the smartcard is reset, the microprocessor 110 
issues a signal to receiver/decoder 2020, the signal com- 
prising an identifier of the conditional access system used by 
the smartcard and data generated from data stored in the 
smartcard, including the card ID. This signal is stored by the 
receiver/decoder 2020, which subsequently utilises the 
stored signal to check whether the smartcard is compatible 
with the conditional access system used by the receiver/ 
decoder 2020. 

The EEPROM 150 also contains a permanent "random 
number generator" zone 152 which contains a program for 
generating pseudo-random numbers. Such random numbers 
are used for diversifying transaction output signals gener- 
ated by the smartcard 3020 and sent back to the broadcaster. 

Below the random number generator zone 152 a perma- 
nent "management" zone 153 of 144 bytes is provided. The 
permanent management zone 153 is a specific operator zone 
utilised by a program in the ROM 130 in the dynamic 
creation (and removal) of zones 154, 155, 156 ... as 
described below. The permanent management zone 153 
contains data relating to the rights of the smartcard to create 
or remove zones. 

The program for dynamically creating and removing 
zones is responsive to specific zone creation (or removal) 
EMMs which are transmitted by the SAS 3002 and received 
by the receiver/decoder 2020 and passed to the subscriber 
smartcard 3020. In order to create the EMMs the operator 
requires specific keys dedicated to the management zone. 
This prevents one operator from deleting zones relating to 
another operator. 
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Below the management zone 153 is a series of "operator 
ID" zones 154, 155, 156 for operators 1, 2 ... N respectively. 
Normally at least one operator ID zone will be preloaded 
into the EEPROM of the subscriber smartcard 3020 so that 

5 the end user can decrypt programmes broadcast by that 
operator. However further operator ID zones can subse- 
quently be dynamically created using the management zone 
153 in response to a transaction output signal generated via 
his smartcard 3020 by the end user (subscriber), as will 

10 subsequently be described. 

Each operator zone 154, 155, 156 contains the identifier 
of the group to which the smartcard 3020 belongs, and the 
position of the smartcard within the group. This data enables 
the smartcard (along with the other smartcards in its group) 

15 to be responsive to a broadcast "group" subscription EMM 
having that group's address (but not the smartcard' s position 
in the group) as well as to an "individual" (or commercial 
offers subscription) EMM addressed only to that smartcard 
within the group. There can be 256 member smartcards of 

20 each such group and this feature therefore reduces signifi- 
cantly the bandwidth required for broadcasting EMMs. 

In order to reduce further the bandwidth required for 
broadcasting "group" subscription EMMs, the group data in 
each operator zone 154, 155, 156 and all similar zones in the 

25 EEPROM of smartcard 3020 and the other daughter smart- 
cards is continually updated to enable a particular smartcard 
to change its position in each group to fill any holes created 
by e.g. deletion of a member of the group. The holes are 
filled by the SAS 3002 as in the STM server 3104 there is 

30 a list of such holes. 

In this manner fragmentation is reduced and each group's 
membership is maintained at or near the maximum of 256 
members. 

Each operator zone 154, 155, 156 is associated with one 
35 or more "operator data objects" stored in the EEPROM 150. 
As shown in FIG. 19, a series of dynamically created 
"operator data" objects 157-165 are located below the 
operator ID zones. Each of these objects is labelled with: 

a) an "identifier*' 1, 2, 3 .... N corresponding to its 
40 associated operator 1, 2, 3 . . . N as shown in its left 

hand section in FIG. 19; 

b) an "ID" indicating the type of object; and 

c) a "data" zone reserved for data, as shown in the right 
45 hand section of each relevant operator object in FIG. 

19. It should be understood that each operator is 
associated with a similar set of data objects so that the 
following description of the types of data in the data 
objects of operator 1 is also applicable to the data 
50 objects of all the other operators. Also it will be noted 
that the data objects are located in contiguous physical 
regions of the EEPROM and that their order is imma- 
terial. 

Deletion of a data object creates a "hole" 166 in the 
5S smartcard, that is, the number of bytes that the deleted 
objects had previously occupied are not immediately occu- 
pied. The thus "freed" number of bytes, or "hole" are 
labelled with: 

a) an "identifier" 0; and 
60 b) an "ID" indicating that the bytes are free to receive an 
object. 

The next data object created fills the hole, as identified by 
the identifier 0. In this manner the limited memory capacity 
(4 kilobytes) of the EEPROM 150 is efficiently utilised. 
65 Turning now to the set of data objects associated with 
each operator, examples of the data objects are now 
described. 
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Data object 157 contains an EMM key used for decrypt- decoder 2020 sends the ECM to the smartcard, the smartcard 

ing encrypted EMM s received by the receiver/decoder decreases the wallet of the smartcard 3020 by 25 tokens, 

2020. This EMM key is permanently stored in the data writes the session ID 168, the session mode 169, the session 

object 157. This data object 157 may be created prior to index 170 and the session view 171 in the PPV event 

distribution of the smartcard 3020, and/or may be created 5 description 167 and extracts and deciphers the control word 

dynamically when creating a new operator zone (as ^ rom tne ECM. 

described above) m me "P re -b°°k" mode, an EMM will be passed to the 

Data object 159 contains ECM keys which are sent by the 5??^" * 3020 50 smartcard will write the session 

associated operator (in this case operator 1) to enable the end 10 168 > the & ™? a ™ d *" 9 ' * c /f S1 ° n a ° d £° 

* j . *u 1 £(L :» c * session view 171 m the PPV event description 167 using the 

user to decrypt the particular bouquet of programs to 10 £jy^ 

which he has subscribed. New ECM keys are sent typically ^ ^ 1JQ caQ be ^ tQ differeDtiate one 

every month, along with a group subscription (renewal) broadcast from me omen feature permits authorization 

EMM which renews the end user s overall right to view the to be ^ ven for a subset of broadcastS) for example, 3 times 

broadcast from (in this case) operator 1. The use of separate Qut of 5 broadcasts. As soon as an ECM with a session index 

EMM and ECM keys enables viewing rights to be purchased 15 different from the current session index 170 stored in the 

in different ways (in this embodiment by subscription and ppy event description 167 is passed to the smartcard, the 

individually (Pay Per View)) and also increases security. The number of the session view 171 is decreased by one. When 

Pay Per View (PPV) mode will be described subsequently. the session view reaches zero, the smartcard will refuse to 

Since new ECM keys are sent periodically, it is essential decipher an ECM with a different session index to the 

to prevent a user from using old ECM keys, for example by 20 current session index. 

switching off the receiver/decoder or re-setting a clock to The initial value of the session view depends only on the 

prevent expiry of an old ECM key so that a timer in the way in which the broadcast supplier wishes to define the 

receiver/decoder 2020 could be overridden. Accordingly event to which it relates; the session view for a respective 

operator zone 154 comprises an area (typically having a size event may take any value. 

of 2 bytes) containing an obsolescence date of the ECM 25 The microprocessor 110 in the smartcard implements a 

keys. The smartcard 3020 is arranged to compare this date counting and a comparison program to detect when the limit 

with the current date which is contained in received ECMs to the number of vie wings of a particular program has been 

and to prevent decryption if the current date is later than the reached. 

obsolescence date. The obsolescence date is transmitted via All of the session ID 168, the session mode 169, the 

EMMs, as described above. 30 session index 170 and the session view 171 in the PPV event 

Data object 161 contains a 64 bit subscription bitmap description 167 may be extracted from the smartcard using 

which is an exact representation of the broadcast operator's the "call-back" procedure as described previously, 

programs to which the subscriber has subscribed. Every bit Each receiver/decoder 2020 contains an identifier which 

represents a program and is set to "1" if it is subscribed to may either identify uniquely that receiver/decoder or iden- 

and "0" if it is not. 35 tify its manufacturer or may classify it in some other way in 

Data object 163 contains a quantity of tokens which can order to enable it to work only with a particular individual 

be used by the consumer in PPV mode to buy viewing rights smartcard, a particular class of smartcards made by the same 

to an imminent broadcast e.g. in response to a free preview or a corresponding manufacturer or any other class of 

or other advertisement. Data object 163 also contains a limit smartcards which are intended for use with that class of 

value, which may be set to e.g. a negative value to allow 40 receiver/decoders exclusively. 

credit to the consumer. Tokens can be purchased e.g. by In this manner the receiver/decoders 2020 which have 
credit and via the modemmed back channel 4002, or by been supplied by one broadcast supplier to the consumer are 
using a voice server in combination with a credit card, for protected against the use of non-authorised daughter smart- 
example. A particular event can be charged as one token or cards 3020. 

a number of tokens. 45 Additionally or alternatively to this first "handshake" 

Data object 165 contains a description of a PPV event, as between the smartcard and the receiver, the EEPROM of the 

shown with reference to table 167 of FIG, 20. smartcard 3020 could contain a field or bitmap describing 

The PPV event description 167 contains a "session ID" the categories of receiver/decoders 2020 with which it can 

168 identifying the viewing session (corresponding to the function. These could be specified either during the manu- 

program and the time and date of broadcasting) a "session 50 facture of the smartcard 3020 or by a specific EMM. 

mode" 169 indicating how the viewing right is being pur- The bitmap stored in the smartcard 3020 typically com- 

chased (e.g. in pre -bo ok mode), a "session index" 170 and prises a list of up to 80 receiver/decoders, each identified 

a "session view" 171. with a corresponding receiver/decoder ID with which the 

In respect of receiving a programme in PPV mode, the smartcard may be used. Associated with each receiver/ 
receiver decoder 2020 determines whether the programme is 55 decoder is a level "1" or "0*' indicating whether the smart- 
one sold in PPV mode. If so, the decoder 2020 checks, using card may be used with the receiver/decoder or not, respec- 
the items stored in the PPV event description 167 whether lively. A program in the memory 2024 of the receiver/ 
the session ID for the programme is stored therein. If the decoder searches for the identifier of the receiver/decoder in 
session ID is stored therein, the control word is extracted the bitmap stored in the smartcard. If the identifier is found, 
from the ECM. 60 and the value associated with the identifier is "1", then the 

If the session ID is not stored therein, by means of a smartcard is "enabled"; if not, then the smartcard will not 

specific application the receiver/decoder 2020 displays a function with that receiver/decoder, 

message to the end user indicating that he has the right to In addition, if, typically because of an agreement between 

view the session at a cost of, say, 25 tokens, as read from the operators, it is desired to authorize the use of other smart- 

ECM or to connect to the communications servers 3022 to 65 cards in a particular receiver/decoder, specific EMMs will be 

purchase the event. Using the tokens, if the end user answers sent to those smartcards to change their bitmap via the 

"yes" (by means of remote controller 2026 (see FIG. 2)) the transponder 2014. 
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Each broadcast supplier may differentiate his subscribers 
according to certain predetermined criteria. For example, a 
number of subscribers may be classed as "VIPs". 
Accordingly, each broadcast supplier may divide his sub- 
scribers into a plurality of subsets, each subset comprising 
any number of subscribers. 

The subset to which a particular subscriber belongs is set 
in the SMS 3004. In turn, the SAS 3002 transmits an EMM 
to the subscriber which writes information (typically of 
length 1 byte) concerning the subset to which the subscriber 
belongs into the relevant operator data zone, say 154, of the 
EEPROM of the smartcard. In turn, as events are broadcast 
by the broadcast supplier, an ECM, typically of 256 bits, is 
transmitted with the event and indicating which of the 
subsets of subscribers may view the event. If, according to 
the information stored in the operator zone, the subscriber 
does not have the right to view the event, as determined by 
the ECM, programme viewing is denied. 

This facility may be used, for example, to switch off all of 
a given operator's smartcards in a particular geographical 
region during the transmission of a particular program, in 
particular a program relating to a sports fixture taking place 
in that geographical region. In this manner football clubs and 
other sport bodies can sell broadcasting rights outside their 
locality whilst preventing local supporters from viewing the 
fixture on television. In this manner the local supporters are 
encouraged to buy tickets and attend the fixture. 

Each of the features associated with zones 151 to 172 is 
considered to be a separate invention independent of the 
dynamic creation of zones. 

It will be understood that the present invention has been 
described above purely by way of example, and modifica- 
tions of detail can be made within the scope of the invention. 

Each feature disclosed in the description, and (where 
appropriate) the claims and drawings may be provided 
independently or in any appropriate combination. 

In the aforementioned preferred embodiments, certain 
features of the present invention have been implemented 
using computer software. However, it will of course be clear 
to the skilled man that any of these features may be 
implemented using hardware. Furthermore, it will be readily 
understood that the functions performed by the hardware, 
the computer software, and such like ate performed on or 
using electrical and like signals. 

Cross reference is made to our co-pending applications, 
all bearing the same filing date, and entitled Signal Genera- 
tion and Broadcasting (Attorney Reference no. PC/ASB/ 
19707), Smartcard for use with a Receiver of Encrypted 
Broadcast Signals, and Receiver (Attorney Reference No. 
PC/ASB /19708), Broadcast and Reception System and 
Conditional Access System therefor (Attorney Reference 
No. PC/ASB/19710), Downloading a Computer File from a 
Transmitter via a Receiver/Decoder to a Computer 
(Attorney Reference No. PC/ASB/1 9711), Transmission and 
Reception of Television Programmes and Other Data 
(Attorney Reference No. PC/ASB/1 9712), Downloading 
Data (Attorney Reference No. PC/ASB/1 9713), Computer 
Memory Organisation (Attorney Reference No. PC/ASB/ 
19714), Television or Radio Control System Development 
(Attorney Reference No. PC/ASB/1 9717), Extracting Data 
Sections from a Transmitted Data Stream (Attorney Refer- 
ence No. PC/ASB/19716), Access Control System (Attorney 
Reference No. PC/ASB/1 9717), Data Processing System 
(Attorney Reference No. PC/ASB/1 9718), and Broadcast 
and Reception System, and Receiver/Decoder and Remote 
Controller therefor (Attorney Reference No. PC/ASB/ 
19720), The disclosures of these documents are incorporated 
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herein by reference. The list of applications includes the 
present application. 
What is claimed is: 

1. Apparatus for broadcasting encrypted signals to 
s receiver/decoders, the apparatus comprising means for gen- 
erating two or more classes of broadcast control signals, 
wherein each class of such control signals includes receiver/ 
decoder ID data for selectively enabling receiver/decoders 
having a corresponding ID to respond to such a class of 

io control signals, said receiver/decoder ID data including 
group ID data for identifying a group of receiver/decoders 
and data indicating which receiver/decoders in the group are 
able to respond to such control signals, the apparatus being 
provided with database means which is arranged to distrib- 

15 ute dynamically individual receiver/decoders between dif- 
ferent ID groups in response to input information. 

2. Apparatus as claimed in claim 1, wherein said database 
means is responsive to signals received from the receiver/ 
decoders to change the distribution of receiver/decoders 

20 between groups. 

3. Apparatus according to claim 1, said apparatus being 
arranged to broadcast control signals for changing the dis- 
tribution of receiver/decoders between groups in response to 
said input information. 

25 4. Apparatus according to any of claim 1, wherein differ- 
ent classes of control signals enable the decryption of 
different parts of a broadcast encrypted data stream. 

5. Apparatus according to claim 1, wherein said input 
information includes payment information. 

30 6. Apparatus according to claim 5, wherein said classes of 
control signals include classes which control subscription to 
decrypt encrypted broadcast signals from different broadcast 
suppliers. 

7. Apparatus according to claim 6, wherein said classes of 
35 control signals include classes which control purchase of the 

right to decrypt broadcast encrypted data signals in different 
time frames. 

8. Apparatus according to claim 1, wherein said encrypted 
broadcast signals are video and/or audio signals. 

40 9, Apparatus according claim 1, wherein the groups have 
up to 256 members. 

10. Apparatus according to claim 1, said apparatus being 
arranged to transmit said encrypted data signals to a satellite 
in orbit. 

45 11. A receiver/decoder for receiving encrypted broadcast 
signals, the receiver/decoder comprising a group ID and data 
identifying the position of the receiver/decoder in the group, 
said receiver/decoder being responsive to a class of broad- 
cast control signals having a corresponding ID to said group 

50 ID and including data indicating that a receiver/decoder 
having said position within the group is able to respond to 
said signals, the receiver/decoder being arranged to change 
its group ID in response to a further control signal. 

12. A receiver/decoder according to claim 11, wherein 
55 said further control signal comprises a broadcast signal, said 

broadcast signal and said encrypted broadcast signals being 
arranged to be received by said receiver/decoder. 

13. A receiver/decoder according to claim 11, wherein 
said group ID is recorded in a smartcard removably inserted 

60 in the receiver/decoder. 

14. A receiver/decoder according to any of claim 11, 
wherein said encrypted broadcast signals are video and/or 
audio signals. 

15. A system for broadcasting and receiving digital data 
65 signals comprising: 

a message generator for generating two or more classes of 
broadcast control signals, wherein each class of such 
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control signals includes receiver/decoder ID data for 
selectively enabling receiver/decoders having a corre- 
sponding ID to respond to such a class of control 
signals, said receiver/decoder ID data including group 
ID data for identifying a group of receiver/decoders and 
data indicating which receiver/decoders in the group 
are able to respond to such control signals; 

a database arranged to distribute dynamically individual 
receiver/decoders between different ID groups in 
response to input information; and 

a receiver/decoder for receiving said broadcast control 
signals, the receiver/decoder comprising a group ID 
and data identifying the position of the receiver/ 
decoder in the group, said receiver/decoder being 
responsive to a class of said broadcast control signals 
having a corresponding ID to said group ID and includ- 
ing data indicating that a receiver/decoder having said 
position within the group is able to respond to said 
signals, the receiver/decoder being arranged to change 
its group ID in response to a further control signal. 

16. A method of broadcasting encrypted signals to 
receiver/decoders, the method comprising generating two or 
more classes of broadcast control signals, each class of such 
signals including receiver/decoder ID data for selectively 
enabling receivers/decoders having a corresponding ID to 
respond to such a class of control signals, said receiver/ 
decoder ID data including group ID data for identifying a 
group of receiver/decoders and data indicating which 
receiver/decoders in the group are able to respond to such 
control signals, and distributing dynamically individual 
receiver/decoders between different ID groups in response to 
input information. 

17. A method according to claim 16 wherein said input 
information includes payment information and said classes 

of control signals enable the receiver/decoders to selectively 35 
decrypt portions of an encrypted broadcast video and/or 
audio stream. 

18. Apparatus for broadcasting encrypted signals to 
receiver/decoders, the apparatus comprising means for gen- 
erating control signals for controlling or enabling the 40 
decryption of said encrypted signals, means for associating 
control signals with respective program transmissions 
within said broadcast signals, the associating means com- 
prising means for generating a signal identifying each trans- 
mission in a series of transmissions of the same program. 

19. Apparatus according to claim 18, further comprising 
means for generating a signal for setting a limit at the 
receiver/decoders on the number of transmissions in said 
series which can be decrypted. 

20. Apparatus according to claim 19, said apparatus being 
responsive to an input signal from a receiver/decoder to vary 
said limit. 

21. Apparatus according to claim 18, said apparatus being 
arranged to transmit said video and/or audio stream to a 
satellite in orbit. 

22. A receiver/decoder for receiving and decrypting 
broadcast signals in a Pay Per View (PPV) mode, the 
receiver/decoder comprising means for detecting control 
signals which enable or control the decryption of particular 
program transmissions within said broadcast signals, said 
control signals including information identifying each trans- 
mission in a series of transmissions of the same program, 
and limiting means coupled to said detecting means for 
limiting the number of transmissions in said series which 
can be decrypted. 

23. A receiver/decoder according to claim 22, wherein 
said limiting means comprises a counter arranged to be 
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incremented or decremented towards a stored limit value in 
response to each successive viewing of a transmission 
within said series. 

24. A receiver/decoder according to claim 23, further 
comprising means for adjusting said limit value in response 
to a received broadcast signal. 

25. A receiver/decoder according to claim 22, wherein 
said limiting means comprises a smartcard removably 
inserted in the receiver/decoder. 

26. A receiver/decoder for use with a smartcard including 
a memory containing a list of IDs of respective receiver/ 
decoders with which it may operate and indications as to 
whether the smartcard may operate with each of said listed 
receiver/decoders, wherein said receiver/decoder comprises: 

a smartcard reader; 

a processor coupled to said smartcard reader and arranged 
to decrypt signals in dependence upon an output from 
the smartcard; 

memory means containing a stored ID of said receiver/ 
decoder; 

means for comparing said stored ID with an ID of the 
smartcard read by said smartcard reader; and 

means for enabling or disabling the decryption of said 
signals in dependence upon said comparison. 

27. A receiver/decoder according to claim 26 further 
comprising: 

a smartcard including a memory containing a list of IDs 
of respective receiver/decoders with which it may 
operate and indications as to whether the smartcard 
may operate with each of said listed receiver/decoders; 
and 

means for reading the ID of each receiver/decoder listed 
in the memory of said smartcard and the indication 
associated therewith to determine whether the smart- 
card may be used with the receiver/decoder. 

28. A smartcard for use with a receiver of encrypted 
broadcast signals, the smartcard comprising: 

a microprocessor for enabling or controlling decryption of 
said signals; and 

a memory coupled to said microprocessor; 

said microprocessor being adapted to enable or control the 
individual decryption of a plurality of such signals from 
respective broadcast suppliers of such signals by means 
of respective zones in said memory, said zones each 
being arranged to store decryption data associated with 
a respective one of said broadcast suppliers, said 
decryption data including an address assigned to the 
smartcard by the respective broadcast supplier and 
enabling the decryption of signals associated with that 
address broadcast by that broadcast supplier. 

29. A smartcard according to claim 28, wherein said 
address, is assigned to the smartcard by means of a control 
signal broadcast by the broadcast supplier. 

30. Apparatus for broadcasting encrypted broadcast sig- 
nals to receiver/decoders, the apparatus comprising: 

means for generating a first set of control signals associ- 
ated with a respective broadcast supplier of broadcast 
signals and a second set of control signals associated 
with respective encrypted program signals, the control 
signals in the second set having an address portion for 
selectively enabling decryption of the encrypted pro- 
gram signals by a receiver/decoder having a corre- 
sponding address. 

31. Apparatus according to claim 30, said apparatus being 
arranged to black out decryption of a selected program in a 
selected geographical location. 
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32. Apparatus for broadcasting encrypted broadcast sig- 
nals to receiver/decoders, the apparatus comprising a con- 
ditional access system for generating a first set of control 
signals associated with a respective broadcast supplier of 
broadcast signals and a second set of control signals asso- S 
ciated with respective encrypted program signals, the con- 
trol signals in the second set having an address portion for 
selectively enabling decryption of the encrypted program 
signals by a receive r/de coder having a corresponding 
address. 10 

33. Apparatus for broadcasting encrypted signals to 
receiver/decoders, the apparatus comprising a conditional 
access system for generating two or more classes of broad- 
cast control signals, wherein each class of such control 
signals includes receiver/decoder ID data for selectively 15 
enabling receiver/decoders having a corresponding ID to 
respond to such a class of control signals, said receiver/ 
decoder ID data including group ID data for identifying a 
group of receiver/decoders and data indicating which 
receiver/decoders in the group are able to respond to such 20 
control signals, the apparatus being provided with a database 
which is arranged to distribute dynamically individual 
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receiver/decoders between different ID groups in response to 
input information. 

34. Apparatus for broadcasting encrypted signals to 
receiver/decoders, the apparatus comprising a conditional 
access system for generating control signals for controlling 
or enabling the decryption of said encrypted signals, and for 
associating control signals with respective program trans- 
missions within said broadcast signals by generating a signal 
identifying each transmission in a series of transmissions of 
the same program. 

35. A receiver/decoder for receiving and decrypting 
broadcast signals in a Pay Per View (PPV) mode, the 
receiver/decoder being configured to detect control signals 
which enable or control the decryption of particular program 
transmissions within said broadcast signals, said control 
signals including information identifying each transmission 
in a series of transmissions of the same program, the 
receiver/decoder including a smartcard for limiting the num- 
ber of transmissions in said series which can be decrypted. 

* * * * * 
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